Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Veracode

veracode

Java Crypto Catchup

Nov 16, 2020 By Mansi Sheth In Veracode

In 2017, we started a blog series talking about how to securely implement a crypto-system in java. How to Get Started Using Java Cryptography Securely touches upon the basics of Java crypto, followed by posts around various crypto primitives Cryptographically Secure Pseudo-Random Number Generator (CSPRNG), Encryption/Decryption, and Message Digests. We also released a Java Crypto Module for easier dockerization of injectable modules exposing Crypto services via an API.

Read Post
veracode

In the Financial Services Industry, 74% of Apps Have Security Flaws

Nov 10, 2020 By Hope Goslin In Veracode

Over the past year, the financial services industry has been challenged with pivoting its operations to a fully digital model, putting the security of its software center stage. Despite the unanticipated pivot, our recent State of Software Security v11 (SOSS) report found that the financial services industry has the smallest proportion of applications with security flaws compared to other sectors, along with the second-lowest prevalence of severe security flaws, and the best security flaw fix rate.

Read Post

Driving the Cybersecurity Agenda with the C-Suite and Boards

Nov 5, 2020 By Veracode In Veracode
Veracode CEO Sam King joins the Advanced Cyber Security Center, the Boston Globe’s Jon Chesto, MassMutual CISO Jim Routh, and State Street CTRO for a fireside chat about the strategic role the C-suite and corporate boards play in cybersecurity. Sam describes why communication between the board, the C-suite, the CISO, and the security team must be frequent to add value from both a governance and compliance perspective.
View Video
veracode

New PCI Regulations Indicate the Need for AppSec Throughout the SDLC

Nov 2, 2020 By Hope Goslin In Veracode

The PCI Security Standards Council (SSC) is a global organization that aims to protect payment transactions and consumer data by developing standards and services for payment software vendors that drive education, awareness, and implementation. Since payment software is constantly changing, the SSC is constantly evolving and adapting its standards to ensure that vulnerabilities and cyberattacks are minimized.

Read Post

Install Veracode for VS Code to Run IDE Scans

Oct 30, 2020 By Veracode In Veracode
In this video, you will learn how to install the Veracode for VS Code extension. The Veracode for VS Code extension is available from the Visual Studio Marketplace. The Veracode IDE Scan finds security defects in your code in seconds so you can fix the findings directly in your IDE. Veracode for VS Code is an extension to Visual Studio Code, which performs a Veracode IDE scan at the file level, and supports JavaScript, TypeScript, and C#.
View Video

Veracode State of Software Security Vol. 11

Oct 29, 2020 By Veracode In Veracode
Veracode, the largest global provider of application security testing (AST) solutions, announced the State of Software Security (SOSS) Volume 11 revealing 76% of applications contain at least one security flaw and fixing those flaws typically takes months. This year’s analysis of 130,000 applications found that it takes about six months for teams to close half the security flaws they find. Watch as Veracode's Chris Eng and Tim Jarrett break down the key findings from SOSS 11, with specifics on what's within developers' control as they seek to improve the security of their applications.
View Video
veracode

A Software Security Checklist Based on the Most Effective AppSec Programs

Oct 29, 2020 By Hope Goslin In Veracode

Veracode’s Chris Wysopal and Chris Eng joined Enterprise Strategy Group (ESG) Senior Analyst Dave Gruber and award-winning security writer and host of the Smashing Security podcast, Graham Cluley, at Black Hat USA to unveil the findings from a new ESG research report, Modern Application Development Security.

Read Post
veracode

Veracode State of Software Security: Half of Application Security Flaws Remain Open Six Months After Discovery; Apps with Technical Debt Take Two Times as Long to Fix

Oct 27, 2020 By Veracode In Veracode
SOSS Volume 11 finds 76% of applications have at least one security flaw.
Read Post
veracode

Announcing the 11th Volume of Our State of Software Security Report

Oct 26, 2020 By Suzanne Ciccone In Veracode

Today, we released the 11th volume of our annual State of Software Security (SOSS) report. This report, based on our scan results, always offers an abundance of insights and information about software vulnerabilities – what they are, what’s causing them, and how to address them most effectively. This year is no different. With last year’s SOSS Volume 10, we spent some time looking at how much things had changed in the decade spanning Volume 1 to Volume 10.

Read Post
Subscribe to Veracode

Copyright © 2024 OpsMatters™. All rights reserved.